12 May
2003
12 May
'03
11:38
Only a small hint for the /tmp-partition: mount it as follows in /etc/fstab /dev/hda5 /tmp ext2 rw,nosuid,nodev,noexec with the noexec-parameter so no one is able to execute a created script from that directory Greetings olaf
"Gerhard Stegmann" <gerhard.stegmann@magelan.net> 12.05.2003 13:12 >>> hi there i have 2.4.20 with apache 1.3.26 and mod_php 4.2.2
somehow it was possible for a guy, to drop a file /tmp/.ps on the machine, and to start perl on that file #>ps ax 1234 perl /tmp/.ps the file was created under wwwrun.www - ownership, which tells me that apache created it. the script just listens for incoming connections on p 4098, and opens a shell if the correct password is entered.